'; if(!empty($_GET['message'])){ $message = urldecode($_GET['message']); } $interbreadcrumb[] = array ("url" => 'index.php', "name" => get_lang('PlatformAdmin')); $tool_name = get_lang('AddUsers'); // Create the form $form = new FormValidator('user_add'); // Lastname $form->addElement('text','lastname',get_lang('LastName')); $form->applyFilter('lastname','html_filter'); $form->applyFilter('lastname','trim'); $form->addRule('lastname', get_lang('ThisFieldIsRequired'), 'required'); // Firstname $form->addElement('text','firstname',get_lang('FirstName')); $form->applyFilter('firstname','html_filter'); $form->applyFilter('firstname','trim'); $form->addRule('firstname', get_lang('ThisFieldIsRequired'), 'required'); // Official code $form->addElement('text', 'official_code', get_lang('OfficialCode'),array('size' => '40')); $form->applyFilter('official_code','html_filter'); $form->applyFilter('official_code','trim'); // Email $form->addElement('text', 'email', get_lang('Email'),array('size' => '40')); $form->addRule('email', get_lang('EmailWrong'), 'email'); $form->addRule('email', get_lang('EmailWrong'), 'required'); // Phone $form->addElement('text','phone',get_lang('PhoneNumber')); // Picture $form->addElement('file', 'picture', get_lang('AddPicture')); $allowed_picture_types = array ('jpg', 'jpeg', 'png', 'gif'); $form->addRule('picture', get_lang('OnlyImagesAllowed').' ('.implode(',', $allowed_picture_types).')', 'filetype', $allowed_picture_types); // Username $form->addElement('text', 'username', get_lang('LoginName'),array('maxlength'=>20)); $form->addRule('username', get_lang('ThisFieldIsRequired'), 'required'); $form->addRule('username', get_lang('OnlyLettersAndNumbersAllowed'), 'username'); $form->addRule('username', '', 'maxlength',20); $form->addRule('username', get_lang('UserTaken'), 'username_available', $user_data['username']); // Password $group = array(); $auth_sources = 0; //make available wider as we need it in case of form reset (see below) if(count($extAuthSource) > 0) { $group[] =& HTML_QuickForm::createElement('radio','password_auto',null,get_lang('ExternalAuthentication').' ',2); $auth_sources = array(); foreach($extAuthSource as $key => $info) { $auth_sources[$key] = $key; } $group[] =& HTML_QuickForm::createElement('select','auth_source',null,$auth_sources); $group[] =& HTML_QuickForm::createElement('static','','','
'); } $group[] =& HTML_QuickForm::createElement('radio','password_auto',get_lang('Password'),get_lang('AutoGeneratePassword').'
',1); $group[] =& HTML_QuickForm::createElement('radio', 'password_auto',null,null,0); $group[] =& HTML_QuickForm::createElement('password', 'password',null,null); $form->addGroup($group, 'password', get_lang('Password'), ''); // Status $status = array(); $status[COURSEMANAGER] = get_lang('CourseAdmin'); $status[STUDENT] = get_lang('Student'); $form->addElement('select','status',get_lang('Status'),$status); // Platform admin $group = array(); $group[] =& HTML_QuickForm::createElement('radio', 'platform_admin',null,get_lang('Yes'),1); $group[] =& HTML_QuickForm::createElement('radio', 'platform_admin',null,get_lang('No'),0); $form->addGroup($group, 'admin', get_lang('PlatformAdmin'), ' '); // Send email $group = array(); $group[] =& HTML_QuickForm::createElement('radio', 'send_mail',null,get_lang('Yes'),1); $group[] =& HTML_QuickForm::createElement('radio', 'send_mail',null,get_lang('No'),0); $form->addGroup($group, 'mail', get_lang('SendMailToNewUser'), ' '); // Expiration Date $form->addElement('radio', 'radio_expiration_date', get_lang('ExpirationDate'), get_lang('NeverExpires'), 0); $group = array (); $group[] = & $form->createElement('radio', 'radio_expiration_date', null, get_lang('On'), 1); $group[] = & $form->createElement('datepicker','expiration_date', null, array ('form_name' => $form->getAttribute('name'), 'onChange'=>'enable_expiration_date()')); $form->addGroup($group, 'max_member_group', null, '', false); // Active account or inactive account $form->addElement('radio','active',get_lang('ActiveAccount'),get_lang('Active'),1); $form->addElement('radio','active','',get_lang('Inactive'),0); // Set default values $defaults['admin']['platform_admin'] = 0; $defaults['mail']['send_mail'] = 1; $defaults['password']['password_auto'] = 1; $defaults['active'] = 1; $defaults['expiration_date']=array(); $days = api_get_setting('account_valid_duration'); $time = strtotime('+'.$days.' day'); $defaults['expiration_date']['d']=date('d',$time); $defaults['expiration_date']['F']=date('m',$time); $defaults['expiration_date']['Y']=date('Y',$time); $defaults['radio_expiration_date'] = 0; $form->setDefaults($defaults); // Submit button $form->addElement('submit', 'submit', get_lang('Add')); $form->addElement('submit', 'submit_plus', get_lang('Add').'+'); // Validate form if( $form->validate()) { $check = Security::check_token('post'); if($check) { $user = $form->exportValues(); $picture_element = & $form->getElement('picture'); $picture = $picture_element->getValue(); $picture_uri = ''; if (strlen($picture['name']) > 0) { if(!is_dir(api_get_path(SYS_CODE_PATH).'upload/users/')){ if(mkdir(api_get_path(SYS_CODE_PATH).'upload/users/')) { $perm = api_get_setting('permissions_for_new_directories'); $perm = octdec(!empty($perm)?$perm:'0770'); chmod(api_get_path(SYS_CODE_PATH).'upload/users/'); } } $picture_uri = uniqid('').'_'.replace_dangerous_char($picture['name']); $picture_location = api_get_path(SYS_CODE_PATH).'upload/users/'.$picture_uri; move_uploaded_file($picture['tmp_name'], $picture_location); } $lastname = $user['lastname']; $firstname = $user['firstname']; $official_code = $user['official_code']; $email = $user['email']; $phone = $user['phone']; $username = $user['username']; $status = intval($user['status']); $picture = $_FILES['picture']; $platform_admin = intval($user['admin']['platform_admin']); $send_mail = intval($user['mail']['send_mail']); if(count($extAuthSource) > 0 && $user['password']['password_auto'] == '2') { $auth_source = $user['password']['auth_source']; $password = 'PLACEHOLDER'; } else { $auth_source = PLATFORM_AUTH_SOURCE; $password = $user['password']['password_auto'] == '1' ? api_generate_password() : $user['password']['password']; } if ($user['radio_expiration_date']=='1' ) { $expiration_date=$user['expiration_date']; } else { $expiration_date='0000-00-00 00:00:00'; } $active = intval($user['active']); $user_id = UserManager::create_user($firstname,$lastname,$status,$email,$username,$password,$official_code,api_get_setting('platformLanguage'),$phone,$picture_uri,$auth_source,$expiration_date,$active); if ($platform_admin) { $sql = "INSERT INTO $table_admin SET user_id = '".$user_id."'"; api_sql_query($sql,__FILE__,__LINE__); } if (!empty ($email) && $send_mail) { $emailto = '"'.$firstname.' '.$lastname.'" <'.$email.'>'; $emailsubject = '['.get_setting('siteName').'] '.get_lang('YourReg').' '.get_setting('siteName'); $emailheaders = 'From: '.get_setting('administratorName').' '.get_setting('administratorSurname').' <'.get_setting('emailAdministrator').">\n"; $emailheaders .= 'Reply-To: '.get_setting('emailAdministrator'); $emailbody=get_lang('Dear')." ".stripslashes("$firstname $lastname").",\n\n".get_lang('YouAreReg')." ". get_setting('siteName') ." ".get_lang('Settings')." ". $username ."\n". get_lang('Pass')." : ".stripslashes($password)."\n\n" .get_lang('Address') ." ". get_setting('siteName') ." ". get_lang('Is') ." : ". $_configuration['root_web'] ."\n\n". get_lang('Problem'). "\n\n". get_lang('Formula').",\n\n".get_setting('administratorName')." ".get_setting('administratorSurname')."\n". get_lang('Manager'). " ".get_setting('siteName')."\nT. ".get_setting('administratorTelephone')."\n" .get_lang('Email') ." : ".get_setting('emailAdministrator'); @api_send_mail($emailto, $emailsubject, $emailbody, $emailheaders); } Security::clear_token(); if(isset($user['submit_plus'])) { //we want to add more. Prepare report message and redirect to the same page (to clean the form) header('Location: user_add.php?message='.urlencode(get_lang('UserAdded'))); exit (); } else { header('Location: user_list.php?action=show_message&message='.urlencode(get_lang('UserAdded'))); exit (); } } }else{ $token = Security::get_token(); $form->addElement('hidden','sec_token',$token); } // Display form Display::display_header($tool_name); //api_display_tool_title($tool_name); if(!empty($message)){ Display::display_normal_message(stripslashes($message)); } $form->display(); /* ============================================================================== FOOTER ============================================================================== */ Display::display_footer(); ?>